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Method for determining limits for controlling traffic in 
communication networks with access control 

CROSS REFERENCE TO RELATED APPLICATIONS 

[0001] This application is the US National Stage of 
International Application No. PCT/EP2004/000213 , filed 
January 14, 2004 and claims the benefit thereiof. The 
International Application claims the benefits of German 
application No. 10301966.9, filed January 20, 2003, both 
applications are incorporated by reference herein in their 
entirety. 

FIELD OF INVENTION 

[0002] The invention relates to a method for a balanced 
determination of values for limiting traffic in a 
communication network with access controls, with the 
communication network being formed by nodes and connection 
links and with access being controlled by means of a limit 
value for at least a part of the traffic which is to be 
transmitted between marginal nodes over the network. 

SUMMARY OF THE INVENTION 

[0003] The control or limiting of the traffic - both data 
traffic and voice traffic - is a central problem for 
communication networks which use connectionless operation 
where traffic is to be transmitted with high quality-of- 
service requirements, such as voice data transmission for 
example. Suitable mechanisms for checking the traffic are 
currently being investigated by network specialists, 
telecommunications engineers and Internet experts . 
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[0004] Possibly the most important current development in the 
network area is the convergence of voice and data networks 
In the future transmission services with a very wide 
diversity of requirements will be transmitted over the same 
network- The feature which marks out such developments is 
that a large part of the communication over networks in the 
future will be via networks which operate in connectionless 
mode, the most important representative of which is what is 
known as the IP (IP: Internet Protocol) network. The - 
transmission of what is referred to as realtime traffic, 
e.g. voice or video data over data networks while preserving 
quality-of -service features is the prerequisite for 
successful network convergence. For the transmission of 
realtime traffic over data networks in particular narrow 
limits have to be adhered to as regards delay times and the 
packet loss rate of data packets. 

[0005] One possibility for transmission in real time over data 
networks while maintaining quality-of -service ' features is to 
switch a connection through the entire network, i.e. to 
define and reserve in advance the operating means or 
resources required for the service. The provision of 
sufficient resources to guarantee the service features is 
then monitored for each connection section (also known as a 
„link"). Technologies which operate in this way are for 
example ATM (ATM: Asynchronous Transfer Method)' or the MPLS 
(MPLS: Multiprotocol Label Switching) protocol which 
provides for the definition of paths through IP networks. 
The disadvantage of these methods however is their great 
complexity and - in comparison to conventional data networks 
- lower' flexibility Status information about the flows 
switched through the network must be stored or checked for 
the individual links . 
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[0006] A method which avoids the complexity of link-by-link 
checking or control of resources is what is known as the 
Diff-Serv concept. This concept is referred to as 
„ stateless" to indicate that no status information about 
data connections or flows along the transmission path has to 
be maintained. Despite this the Diff-Serv concept only 
provides for access control at the margins of the network. 
With this access control packets can be delayed in 
accordance with their service features, and - if necessary - 
discarded. This is also described as traffic conditioning or 
policing, traffic shaping and traffic engineering. The Diff- 
Serv concept thus allows a distinction to be made between 
different traffic classes - frequently called classes of 
service - which can be prioritized in accordance with the 
transmission requirements and/ or handled with a lower 
priority. Lastly with data transmission with the aid of the 
Diff-Serv concept it is not possible to guarantee that 
service features are maintained for realtime traffic. There 
are no mechanisms available to adapt the realtime traffic 
transmitted over the network so that reliable statements 
about the maintenance of the service features would be 
possible. 

[0007] It is thus desirable for the control of the realtime 
traffic transmitted over the data network to be good enough 
that on the one hand service features can be guaranteed and 
on the other hand optimxom use is made of resources, without 
having to take account of the complexity of connections 
switched through the network. 
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[0008] The object of the invention is to specify an optimized 
method for the definition of limit values for traffic 
restriction in a communication network. 

[0009] The object is achieved by the claims. 

[0010] In accordance with the invention limit values are 
defined for limiting traffic in a communication network 
(e.g. an IP network) . For data transmission over the 
communication network there is provision for access control 
to be undertaken for at least a part of the traffic to be 
transmitted - e.g. for one or more classes of service before 
resources of the network are used for transmission. Access 
is controlled in this case at marginal nodes of the 
communication network formed by nodes and links. A marginal 
node in this case can be a network access node (also known 
as an ingress node) or a network output node (also known as 
an egress node) , as well as an end or start note of a data 
transmission located in the communication network, i.e. a 
node of the network which represents a source or sink as 
regards the traffic. In the latter case the term ^marginal" 
in the word marginal node does not refer to the network but 
to the transmission path of data packets . 

[0011] The starting point for the invention is the 
consideration that balanced traffic handling which is 
subject to access control, before network resources are made 
available for the traffic, is present if the likelihood of a 
non-approval or rejection of the traffic is as independent 
as possible from the marginal nodes (e.g. ingress nodes and 
egress nodes) or the transmission path. The invention will 
look at a plurality of pairs formed by the marginal nodes. A 
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pair of marginal nodes can be associated with the set of 
possible paths leading through the network which run between 
the two "marginal nodes. With the pairs of marginal nodes the 
sequence of the marginal nodes is taken into account, i.e. 
two marginal nodes can define two different pairs depending 
on how the sequence of the two marginal nodes is looked at. 
In other words, for association of different paths with 
pairs of marginal nodes the paths are assigned a direction 
or a direction sense. Pairs of marginal nodes can for 
example consist of a an ingress node and an egress node, of 
an ingress node and a network node which can be receiver or 
addressee of transmitted data, as well as a network node 
which functions as a transmitter, and an egress node. 

[0012] The probability of non-approval of traffic or of flows 
which are subject to an approval check at an marginal node 
can be estimated using traffic models. The invention starts 
from the assumption that with the aid of a traffic model the 
probability of rejection, of traffic - referred to below as , 
blocking probability - will be determined. This type of 
traffic model typically delivers values for the average 
traffic intensity between two marginal nodes and specifies a 
relationship for taking the traffic fluctuations into 
' account. For example it can be assumed that traffic 
fluctuations belong to a Poisson distribution with which the 
probability (in our case- the blocking probability) of the 
limit value for the access control being exceeded can be 
estimated. The blocking probabilities and the limit values 
for access control are interrelated and can generally be 
converted into one another. With the method in accordance 
with the invention, for plurality of pairs formed from 
marginal nodes, the initialization step consists of setting 
the blocking probabilities by defining the limit values for 
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the access control so that they are essentially the same. 
The initial blocking probabilities here are chosen so that 
they are big enough for no overload situations to occur in 
the network. This definition corresponds to fair handling of 
the data stream transmitted between the marginal, nodes, to 
the extent that there is practically the same probability of 
it being allowed or rejected. With this definition however 
there is as yet no guarantee that the resources available to 
the network will be used efficiently. As regards efficient 
resource utilization, the method in accordance with the 
invention makes provision for lowering the blocking 
probability, i.e. increasing the limit values for access 
control correspondingly until an overload situation occurs. 
The lowering of the blocking probabilities or the increasing 
of the limit values for the approval checking is undertaken 
such that the blocking probabilities remain essentially the 
same for the pair of marginal nodes . For the pairs of 
marginal nodes involved when the overload situation arises, 
the blocking probabilities are essentially set to the value 
at which the overload situation would be caused by raising 
the limit values. For example the blocking probabilities are 
lowered step-by-step and the value of the blocking 
probabilities and thereby also the value of the 
corresponding limits is then set for the pairs contributing 
to the overload situation to the value that it had in the 
step directly before the overload situation occurred. 

[0013] The advantage of the invention is that in a network 
without explicit path reservation limits can be defined for 
access control in a balanced and resource-efficient way. In 
accordance with a development of the invention limit values 
are defined for all pairs of the plurality of pairs foarmed 
from marginal nodes. In this case, for pairs which were not 
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involved in the occurrence of the first overload situation, 
the blocking probability is further lowered simultaneously 
for all remaining pairs until a second overload situation 
occurs. For the pairs involved in the occurrence of the 
overload situation the blocking probabilities or the limit 
values are essentially frozen or maintained at the value 
which they had on occurrence or shortly before the 
occurrence of the overload situation. This step is then 
repeated until such time as limit values have been defined 
for all pairs i.e. the blocking probability is 
simultaneously increased for the remaining pairs until an 
overload situation occurs in which, for the pairs involved 
in the overload situation, the blocking probability is 
retained until such time as the blocking probability is in 
place for all pairs. 

[0014] With this development there are two points to note: 

1. The development leads to an assignment of blocking 
probabilities or limit values for all pairs since a blocking 
probability of zero for a pair would mean that one would be 
able to transmit an unlimited amount of traffic between the 
edge points of the pair without any overload situation 
arising, which is evidently not the case for real networks. 

2. The blocking probability or limit values for all pairs of 
the plurality of pairs is defined so that a lowering of the 
blocking probability of any given pair from the plurality 
would lead to an overload situation. In this sense an 
optimiom utilization of the resources available to the 
network is produced. 

[0015] The plurality of pairs includes for example all pairs 
of ingress nodes and egress nodes . In this case complete 
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control of the traffic entering the network and leaving the 
network again is provided, or of the traffic of the class of 
service which is subject to access control. The setting of 
the limits or the choice of the blocking probabilities 
guarantees that no overload situation occurs; As a 
consequence definitive statements can be made about the 
quality-of -service features. The setting of limits for 
access control then opens up the possibility of quality of 
service with simultaneously a best possible utilization of 
the resources available. 

[0016] Communication networks have physical restrictions for 
the transmission capacity over the connection sections or 
links which are enclosed by the network. The maximum 
transmission capacity of the individual links defines an 
upper limit for the traffic able to be transmitted over the 
link in question. Frequently limits on the traffic voliime 
over the individual links are set lower than the maximum 
physical capacity in order to provide spare capacity on the 
one hand and on the other hand to prevent faults occurring 
in the network. In the latter case the focus is frequently 
on the resilience of a network, i.e. the capability of 
ensuring problem-free transmission even with failures of 
network elements. For the communication network discussed 
above the limits for the traffic on the individual links can 
for example be selected so that the failure of one (or more) 
links does not lead to the physical limits for the capacity 
of the other links being exceeded, i.e. even if a link fails 
the traffic which was subject to access control can be 
managed. An overload situation in the sense of the method in 
accordance with the invention can then be defined as the 
fact that the defined limits for the traffic volume on this 
link could have been exceeded on a connection section or a 
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link of the network. Checking the communication network for 
the possibility of an overload situation can be undertaken 
for example with the aid of a model for the load 
distribution within the network. A check is made for example 
using a simulation program as to- whether there are links in 
the communication network for which a maximiom traffic load 
within the framework of the defined limits would lead to the 
permitted traffic volume for the link being exceeded. 
Another slightly modified definition would be that the 
limits covering volume of traffic on the individual links 
would be likely to be exceeded with high predefinable 
probability. The pairs of marginal nodes which contribute to 
an overload situation produced by a limit value being 
exceeded for the traffic on a link would then be those to 
which paths could be assigned which run via the link which 
is causing the overload situation. In traffic theory the 
term traffic pattern is usually used to designate the real 
(instantaneous) traffic present at the inputs of the 
network. Checking for an overload situation can then be 
undertaken by checking whether the traffic pattern allowed 
by the limits, taking into account the routings undertaken 
in the network, would then lead to an overload situation or 
not . 

[0017] The object of the invention is explained in more detail 
below within the context of an exemplaary embodiment which 
refers to a Figure. 

BRIEF DESCRIPTION OF THE DRAWING 

[0018] The sole Figure shows a network made up of nodes and 
links. 
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DETAILED DESCRIPTION OF THE INVENTION 

[0019] The Figure shows a network made up of nodes and links. 
In this case the marginal nodes Rl to RIO are indicated by 
solid circles. The internal nodes are indicated by non-solid 
circles. Links are illustrated by connectors between nodes. 
For the network different types of peripheral conditions can 
be defined which guarantee approval control at the margin of 
the network. The type of peripheral conditions can for 
example be selected to depend on the topology of the 
network.' The form of the peripheral conditions helps to 
decide on the blocking probabilities for which an overload 
situation occurs in accordance with the inventive method. 
Possible peripheral conditions are: 

1. Limits for the traffic which is transmitted between two 
marginal nodes, i.e. a limit value in each case for a pair 
{Ri,Rj), j/i e {1,..,10}, which is defined by two marginal 
nodes . 

2. Limit values for all ingress and egress nodes. If we 
assume that all marginal nodes Ri, i £ {1,..,10} are both 
ingress and egress nodes, this would produce 20 limit 
values, with two limit values, an ingress value and an 
egress value being assigned to a node in each case. For a 
flow which is to be transmitted from the ingress node Ri to 
the egress node Rj a check would then be made on whether the 
node would exceed the ingress limit for Ri or the egress 
limit for R j . Exceeding the limit would result in rejection. 

3. Ingress and egress limit values as for Point 2. but for 
all links of the network. This means that for each link L 
one has two limits per marginal node in each case. For the 
transmission of a flow from node Ri to node Rj the ingress 
limits of Ri and the egress limits of Rj would be checked 
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which relate to links over which the flow is to be 
transmitted. 

[0020] To simplify matters the explanation belows assumes the 
form of limits described in 1. above. They are to form the 
basis of a traffic model which allows an average voliime of 
traffic between two marginal nodes Ri and Rj to be 
determined. The average traffic between two marginal nodes 
Ri and Rj is designated for simplicity's sake as Vi j . 
Likewise Gij is taken as the limit value for the traffic 
transmitted from the ingress node Ri to the egress node Rj . 
A flow to be transmitted from Ri to Rj is allowed if the 
aggregated traffic between Ri and Rj would not exceed the 
limit Gij. In this case j,i G {1,..,10} always applies. The 
traffic model uses the average traffic values Vij and 
assTjmptions about the statistical fluctuations, which belong 
to a Poisson distribution for example. To initialize the 
method the limit values Gij are set so (low) that the same 
blocking probabilities exist for all pairs (Ri,Rj) and that 
in addition no overload situation occurs. Checking for the 
occurrence of an overload situation can be undertaken for 
example by deteinnining, for the maximum traffic load allowed 
by the limit values with the inclusion of the routings 
within the network, the traffic load of the individual links 
and comparing this with the limits or capacity of the links. 
In accordance with the invention the blocking probabilities 
are lowered by the same percentage ratio and the limit 
values Gij correspondingly increased. In this case, with the 
aid or the traffic model, for a set of reduced, similar 
values of the blocking probability a corresponding set of 
limit values Gij (analytical or numerical) is determined, 
which - within the framework of the traffic model - defines 
a non-approval with the reduced blocking probability for all 
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pairs (Ri,Rj). A check for overload follows. If no overload 
occurs the blocking probability is further lowered 
simultaneously for all communication links. This can for 
example occur through step-by-step lowering by 10 of the 
initial value. In one step, for example the fifth a 
bottleneck or an overload situation occurs on the link L, 
i.e. the limits for the capacity on this link would be 
exceeded by the choice of limits at step 5. The pairs 
(R1,R2), (R2,R1), (R1,R3), (R3,R1), {R1,R4) and (R4,Rl) 
contribute to this overload situation for example. For these 
pa.irs the limits Gij or the blocking probability are then 
set to their value at step 4. The method is then continued 
for the remaining pairs (Ri,Rj) until limits Gij are defined 
for all pairs (Ri,Rj). 



